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(54) Data security method and system 

(57) A system for confidential data communication 
over the Internet and other communications channels 
between the server machine and dierrt machine is dis- 
closed. The dient machine has a main CPU and a main 
memory and additional CPU and additional memory. 
The additional CPU and memory in the dient machine 
are linked to the CPU and memory of the server 
machine via an Internet connection or other communi- 
cations channel connection. The dient and server 
CPUs and memories thus finked then cooperatively and 
simultaneously execute a single process while dynami- 
cally modifying the encryption and decryption codes as 
necessary to make decryption by a third party impossi- 
ble. 
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Description 

BACK<?RPUNQ QF TT^ INVENTION 

1. Reld of the invention 

The present invention relates to a data security 
method and a data security system, and relates particu- 
larly to a method and system for executing part of the 
server machine process within a process. execution 
space in the dient machine. 

2. Description of the prior art 

The Internet and similar network communications 
channels 103 are widely used today to link plural com- 
munications machines, i.e. communications machines 
(modems) buflt in to or connected to a computer. Such 
networked communications channels 103 typically use 
one or more server machines commonly accessed by 
plural client machines, and provide security for client- 
server communications as shown in Fig. 8. 

The server machine t01 and ciient machine 102 
each comprise memory 105 and 109 and a CPU 104 
and 108, respectively. The client-server communica- 
tions interface 130 is within the communications chan- 
nel 103. The server machine 101 and the client machine 
102 also each comprise a security module 120 and 121, 
respectively. The security module may be implemented 
as software used by the respective machine processes 
and executed by the corresponding CPU in memory, as 
dedicated hardware, or as a combination of CPU-exe- 
cuted software and dedicated hardware. The security 
modules are used specifically for encrypting data before 
transmission between the client and server ever some 
type of communications channel, and then decrypting 
the received encrypted message. 

An example of such a client machine is a personal 
computer for home shopping; the server machine in this 
application is a computer providing a shopping service 
and used to communicate product order numbers and 
credit card numbers for payment This data is presently 
transmitted using the Internet as the corrirnunications 
channel. A typical method for maintaining the cortfiden- 
tiafity of customer credit card numbers in this application 
is to encrypt the crecfit card number on the client side 
before transmission via a World-Wide Web (WWW) 
browser program implementing the Security Socket 
Layer (SSL) v3.0 specification (a pubGc standard). The 
server, which has also implemented SSL v3.0, then 
decrypts the received information. 

When an, order is generated in frtis example, the 
order is issued by a process executed by the dient CPU 
108. and all messages or credit card numbers requiring 
confidentiality held in memory 109 are encrypted by the 
security module 121 before transmission. When the 
data is received by the server, the data encrypted by the 
dient is decrypted by the server-side security module 
1 20, and is then processed by the order processing pro- 
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gram executed by the server CPU 104 and memory 
105. 

The problem in this system is that the encryption 
and decryption functions are separately controlled by 
the ciient and server machines, and the communica- 
tions channel itself is not secure. Conceptually, security 
is provided by wrapping each packet trarismrtted ever 
the communications channel in a "protective wrapper 
achieved by data encryption, and the cornmunications 
channel itself is not secure. 

More specifically, different servers use different 
cornmunications methods (protocols) and dierrts 
accessing different servers require different security 
software for secure communications with different serv- 



Furthermora, while individual packets may be 
secure, these "secure" packets are commonly entrusted 
to a cornmunications channel that may not be secure. 

20 SUMMARY OF THE INVENTION 



The object of the present invention is therefore to 
provide a data security method and system enabling 
secure data cornmunications by executing part of the 
server process in an assigned process execution space 
within the dient machine. 

To achieve this object a data security method 
according to the present invention for executing part of 
a server process, originated from a server machine, 
within a process execution space of a cflent machine is 
presented The method comprises the steps of: 



(a) assigning a process execution space in the cli- 
ent machine, 

(b) calling the server machine from the dient 
machine, 

(c) transferring a program that is part of the server 
process from the server machine to said process 
execution space in the client machine, and 

(d) executing the program from the server machine, 
in said process execution space in the client 
machine, such that a part of the server process is 
executed in said process execution space reserved 
in the client machine, and the server machine and 
part of the client machine cooperatively execute a 
single 



Furthermore, according to the present invention, a 
data security system for executing a process of a server 
machine within a process execution space of a dient 
machine is presented. The system comprises: 

(1) a server machine comprising: 

(a) a first CPU; and 

(b) a first memory; 

(2) a dient machine comprising: 
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(a) a second CPU: 

(b) a second memory: 

(c) a third CPU: and 

(d) a third memory; 

(3) first communication means provided between 
the server machine and the client machine for com- 
municating between the first CPU associated with 
the first memory and the third CPU associated with 
the third memory, and for loading a program from 
the first memory to the third memory for execution 
by the third CPU: 

(4) second communication means provided in the 
client machine for communicating between said 
second CPU and third CPU; and 

(5) means for preventing interaction between the 
second and third memories except when controlled 
by the management program run by the diem sys- 
tem. 

It is to be noted that the second CPU and the third 
CPU provided in the client machine can be physically a 
single CPU, but operated, ag., in a time sharing man- 
ner. Also, the second memory and the third memory can 
be physically a single memory sharing the memory area 
for the second and third memories. 

BRIEF DESCRIPTION OF THE DRAWINGS 

The present invention win become more fully under- 
stood from the detailed description given below and the 
accompanying diagrams wherein: 

Fig. 1 is a block diagram of a preferred embodiment 
of a data security system according to the present 
invention, 

Fig. 2 is allow chart used to describe the operation 
of a data security system according to the present 
invention; 

Fig. 3 is a conceptual diagram used to describe the 
operating principle of a data security system 
according to the present invention; 
Fig. 4 is a flow chan used to describe a process fur- 
ther inprovtng the security of a data security sys- 
tem according to the present invention; 
Fig. 5 is a block diagram of a second embodiment 
of a data security system according to the present 
invention; 

Fig. 6 is a block diagram of a card used in the client 
system; and 

Ftg. 7 is a block diagram of a data security system 
according to the prior art 

DESCRIPTION OF PREFERRED EMBODIMENTS 

The preferred embodiments of the present inven- 
tion are described below with reference to the accompa- 
nying figures. 



ErrWmerrt 1 

Fig. 1 is a block diagram of the preferred embodi- 
ment of a data security system according to the present 

5 invention. As shown in Fig. 1 , one machine 1 comprises 
a CPU 4 and memory 5, and the other machine 2 com- 
prises two CPUs 6 and 8, and two memories 7 and 9. 
These two machines 1 and 2 are able to exchange mes- 
sages with each other via a communications channel 3 

w of some kind, and may be computing systems of any 
type. In the preferred embodiment of the invention, how- 
ever, machine 2 is the client system, and machine 1 is 
the server system in a typical client-server architecture 
whereby the server machine 1 provides f serves") spe- 

is crflc services to the client machine 2. The communica- 
tions channel 3 may include network communications 
channels such as the Internet but shall not be so limited 
and may be any type of communications channel. 
The CPUs 6 and 8 of the client machine 2 may be 

20 physically discrete machines or may be a single CPU 
machine used on a time-share basis. Similarly, the 
memories 7 and 9 may be physically discrete machines 
or may be a single memory machine dearly separated 
into discrete operating areas by the control software of 

25 the client machine 2. The processes executed by CPU 6 
are able to send messages to the processes executed 
by the other CPU 8 through a strictly controlled interface 
10 inside the client machine 2; CPU 8 is likewise able to 
send messages to CPU 6. 

30 Ftg. 2 is a flow chart used to describe the start of a 
communications session between the server 1 and cli- 
ent 2 machines. 

The process starts by the client machine 2 calling 
the server machine 1 via the communications channel 3 

35 to open a new communications session (S1). When the 
server rnachine 1 is thus cont a c t ed, the server software 
causes the server machine 1 to send a specific program 
over the network (communications channel 3) into the 
first memory 7 of the client machine 2 (S2). Note that 

40 while this program is controlled by a CPU 8 in the client 
machine 2, program execution is divided between the 
CPU 4 in the server machine 1 and the other GPU 6 in 
the client machine 2. As a result this program is man- 
aged by the control software of the client machine 2, but 

45 is executed under the operating control of the server 
software. The object of the client machine control pro- 
gram is to assure that the program received from the 
server machine 1 is executed according to the operating 
. rules required for it to operate on the client machine 2. 

so The processes executed by the CPU 4 and memory 5 of 
the server rnachine 1, and the processes executed by 
the CPU 6 and memory 7 of the client machine 2, work 
together to execute a single program. 

The processes executed by the other CPU 8 and 

55 memory 9 of the diem machine 2 communicate with the 
processes executed by the first CPU 6 and memory 7 of 
the client machine 2 via interface 1 0. This interface 10 is 
strictly controlled, and the operation of the server pro- 
gram executing in the hardware of the client machine 2 
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is also strictly controlled. 

This control is achieved by the operating software, 
and the properties of the programming language used 
for this purpose. Java*™* (Sun Microsystems) is one 
example of such a programming language, while other s 
languages with similar specific security features can 
also be used. Strict process separation can also be 
more easily assured by both physically and logically 
separating CPU 6 and memory 7 from CPU 8 and mem- 
ory 9. It is therefore possible to provide the CPU 6 and 10 
memory 7 on a discrete, encapsulated plug-in card 
such as a PC Card(™> or standard PCMCIA card. 

Part of the program generated by the server 
machine 1 is therefore executed by a CPU 6 and 
memoryf7 in the client machine 2 by means of the is 
present invention. Note that this program is a compo- 
nent of the process executed by the server machine 1. 
As a result part of the server process is projected to the 
client machine 2 (S3). The two CPUs 4 and 6 thus work 
together to execute the server program stored partially 20 
in the server memory 5 and the dient memory 7. Com- 
munication between the two dient CPUs 6 and 8 ena- 
bles communications during the comrnunications 
process between the server machine 1 and client 
machine 2 (S4). 25 

Fig. 3 is used to describe cooperative execution of 
a process by the server machine 1 and dient machine 
2. it is assumed below that process 32 is the program 
projected by the server machine t onto the process exe- 
cution area of the dient machine 2. Process 33 is a 30 
native process executed solely by the client machine 2. 
Processes 31 and 32 effectively operate as a single 
process executed while communicating via the commu- 
nications channel 3. 

Processes 32 and 33 operate interactively while as 
communicating with each other under a strict control 
routine as described above. Processes 32 and 33 may 
also elicit input from the user using the hardware of the 
dient machine 2. Depend ng on the specffic hardware 
configuration, the client process 33 must also exchange 40 
messages with the client-server process 32 via the 
internal interface. 

Processes 31 and 32 each also contain a respec- 
tive security module 34. 35. These modules are specifi- 
cally for encrypting and decrypting data passed over the 45 
communications channel 3. While encryption and 
decryption is accomplished In this embodiment in soft- 
ware accelerated by an appCcation-specific integrated 
circuit (ASIC) machine incorporated In both the server 
machine 1 and dient machine 2. it may also be exe- so 
cuted entirely in software. These modules are also 
designed to share a known symmetric key code such as 
MISTY<™>. 

Ffg. 4 is a flow chart used to describe the execution 
of security-controlled processes. As described above, ss 
the dient-server process 32 is projected from machine 1 
to machine 2 for execution by the dient machine 2 (SS). 
The dient process 33 informs the dient-server process 
32 of the client machine 2 ID (S6). and the dient-server 



process 32 forwards this information to the server proc- 
ess 31. 

The ID for the client machine 2 is expressed as 
encrypted data using the public encryption key of the 
server machine 1. and is obtained when the dient 
machine 2 signs on to access the server machine 1. 
Using this private asymmetric public encryption key. the 
server process 31 then decrypts the ID of the dient 
machine 2 (S7). The server process 31 has previously 
looked up the asymmetric public encryption key of the 
dient machine 2. which is stored in a public depository 
of certified copies of such keys. The server process 31 
uses this pubfic key to decrypt the symmetric encryption 
key sent by the server process 31 to the dient-server 
process 32 for this session (S8>. 

The dient-server process 32 passes the encrypted 
symmetric key to the cfient process 33 (S9). and the cfi- 
ent process 33 decrypts the symmetric key information 
and returns the key to the dient-server process 32 to 
enable decryption of all information passed between the 
server and dient during this session (S10). It should be 
noted that this security procedure is just one example of 
the security procedures that may be used, and may vary 
from session to session or according to the server 1 
accessed by the dient machine 2. Because the dient- 
server process 32 is. in fact a projection from the server 
machine 1 . the process can be dynamically changed by 
the server process 31. and this ability of the server 
machine 1 to dynamically change and control the proc- 
ess cooperatively executed by the server machine 1 and 
client machine 2 is a primary feature of the present 
invention. An object of the present invention is thus to 
improve data communications security by. for example, 
repeatedly modifying the security procedure under the 
control of the server machine. 

Fig. 5 is a block dagram of an alternative embodi- 
ment of the present invention. The dient machine 2 in 
this embodiment comprises an additional subsystem 13 
containing the CPU 6 and memory 7. This subsystem 
13 also contains a communications drcuit 12. .which 
may be the circuitry and components required for an 
ISDN connection, for exampla This communications 
drcuit 12 may also be used for a wide range of other 
comrrunications services and connections, inducing 
analog telephone One connections, wireless communi- 
cations connections, or a modem for LAN connections. 
While the CPU 6 may or may not be associated with 
these communications operations, an additional mem- 
ory 11 separate from memory 7 is preferably provided to 
facilitate the processes associated with these functions. 

The security module 14 used for the encryption and 
decryption processes is also contained within the sub- 
system 13 and connected to the CPU 6. 

The entire subsystem 13 may also be encapsulated 
and connected to a machine using a standard commu- 
nications bus, e.g. ( a standardized PCMCIA PC card 
bus. 

Note that the alternative embodiment described 
above is identical to that of the first embodiment except 
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that the processing power required to project the client- 
server process 32 from the server machine 1 to the cli- 
ent machine 2 and run the client -server process 32, and 
some or all of the processing power required to operate 
the communications circuit, can be distributed to the 
CPU 6. 

Acceleration hardware in the form of a custom 
ASIC machine can be added to the subsystem to 
reduce the CPU power required for the encryp- 
tion/decryption operations of the client-server process 

32. 

Referring to Fig. 6, an example of the subsystem 13 
for use in the dient system is shown in a form of a card. 
Provided in the card 13 are communications circuit 12, 
encrypt/decrypt chip 22 (corresponding to security 
module 14 shewn in Fig. 5). and microcomputer 21 (cor- 
responding to CPU 6, memories 7 and 1 1 in Fig. 5). 
Microcomputer 21 includes its own MCU, and has the 
function to receive and run the projected process from 
the server machine and to interpret the projected proc- 



According to one example, the card 13 is operated 
by the launching of applets written in a modified version 
of Sun Micros's JAVA (tm)" programming languaga 
These applets implement security methods and proto- 
cols between the main processes of the server and the 
projected processes of the servers processes running 
in the dient device By this arrangement the channel 
security can be obtained with minimal dient interven- 
tion. 

The use of the JAVA (tm) language or JAVA like lan- 
guage is due to its inherent benefits such as platform 
independence, familiarity to programmers due to its like- 
ness to C++, its multiple security features and its inher- 
ent inability to work with memory outside that which is 
allocated to it 

The "projected process' is the JAVA (tm) subset 
applet which comes over the communications network 
from the server machine as an extended part of the 
servers process and is executed via the interpreter in 
computer 21. The interpreter interacts with the applica- 
tion for the validation process and then controls the 
operations of the communications card in the communi- 
cations session with the server machina This is carried 
out by taking packets from the program running in CPU 
8 and encrypting the packets for transmission. Also, the 
packets from the server machine are decrypted. 

A data security system according to the present 
invention enhances communications channel security 
by not entrusting the encryption and decryption func- 
tions to separate processing machines. This system 
does not require the dient machine to have and use dif- 
ferent security software to access different server 
machines using different communications methods. 
Furthermore, individual communications packets are 
secure, and are not entrusted to a communications 
channel that may not be secure. 

It is to be noted that instead of securing each data 
packet individually, the entire virtual communications 
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channel can be made secure. This, for example, makes 
it easier to detect security attacks in which attempts to 
capture data in the channel are made. 

Further, the dient machines do not need to have 
different security software for different sessions 
types/communications methods, because the software 
originates in each case from the server machine. Also, 
different security software can be used pa- different ses- 
sion/server/communication method. This can be done 
without dient intervention or pre-programming. 

By the present invention, the client machine stiff 
needs to identify itself, but the client device is no longer 
involved in the mechanics of channel securing protocols 
as the dierrt/server interface is moved within the dient 
machine. By this arrangement the server machine can 
control the actual session keys and protocols without 
allowing the dient to see the process. This offers an 
additional level of security over and above the conven- 
tional security procedures. 

According to the present invention, since the proto- 
cols are operated by transient processes running on a 
separate processor from the dient main processor, and 
since these processes need never be completely 
present, capture of the protocols becomes extremely 
difficult 

Even if a protocol Is. somehow captured by a 
sophisticated impostor dient who has illegally obtained 
keys to access the system, since the server machine 
may vary the protocols at will, the captured protocol is 
potentially (assuming the server implements changes of 
protocol per session) useless outside the current ses- 
sion and cannot be used to eavesdrop on conversations 
between the server machine and another dient 
machine (or the same machine in a different session). 
This adds another layer of security, even if key security 
have become co mpromis ed in some way. 

The invention being thus described, it will be obvi- 
ous that the same may be varied in many ways. Such 
variations are not to be regarded as a departure from 
the spirit and scope of the invention, and all such modi- 
fications as would be obvious to one skilled in the art 
are intended to be included within the scope of the fol- 
lowing claims. 

A system for confidential data communication over 
the Internet and other communications channels 
between the server machine and client machine is dis- 
closed. The dient machine has a main CPU and a main 
memory and additional CPU and additional memory. 
The additional CPU and memory in the client machine 
are finked to the CPU and memory of the server 
machine via an Internet connection or other communi- 
cations channel connection. The dient and server 
CPUs and memories thus linked then cooperatively and 
simultaneously execute a single process while dynami- 
cally modifying the encryption and decryption codes as 
necessary to make decryption by a third party 
We. 
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Claims 

1. A data security method for executing part of a 
server process* originated from a server machine, 
within a process execution space of a client 5 
machine, said method comprising the steps of: 

(a) assigning a process execution space in the 
client machine, 

(b) calling the server machine from the client 10 
machine, 

(c) transferring a program that is part of the 
server process from the server machine to said 
process execution space in the client machine, 
and is 

(d) executing the program from the server 
machine in said process execution space in the 
client machine, such that a part of the server 
process is executed in said process execution 
space reserved in the client machine, and the 20 
server machine and part of the client machine 
cooperatively execute a single process. 

2. A data security method according to Claim 1. fur- 
ther comprising the steps of: 25 

(e) interfacing the client process with the server 
process in the client machine, and 

(f) communicating between the client process 
and server process. so 

3. A data security method according to Claim 1. 
wherein said client machine encrypts and decrypts 
data using encryption and decryption information 
contained in the program transferred from the 35 
server machine 

4. A data security method according to Claim 2, 
wherein said dient machine comprises an applica- 
tion-specific integrated circuit unit to execute at *o 
least a part of the encryption and decryption proc- 
ess under the control of the program transferred 
from the server. 

5. A data security system for executing a process of a 4S 
server machine within a process execution space of 

a dient machine, said system comprising: 



(3) first communication means (3) provided 
between the server machine and the client 
machine for communicating between the first 
CPU associated with the first memory and the 
third CPU associated with the third memory, 
and for loading a program from the first mem- 
ory to the third memory for execution by the 
third CPU; 

(4) second communication means (10) pro- 
vided in the client machine for cornrnunicating 
between said second CPU and third CPU; and 

(5) means (10) for preventing interaction 
between the second and third memories 
except when controlled by the management 
program run by the client system. 

6. A data security system according to Claim 5 
wherein said dient machine comprises a primary 
machine portion comprising said second CPU (8) 
and said second memory (9), and a connectabie 
machine portion (13) comprising said third CPU (6) 
and third memory (7). 

7. A data security system according to Claim 6, 
wherein said connectabie machine portion (13) fur- 
ther comprises a communication drcuit (12). 

a A data security system according to Claim 6 or 7, 
wherein said connectabie machine portion (13) is 
implemented in a card. 

9. A data security system according to Claim 6, 
wherein said connectabie machine portion (13) fur- 
ther comprises an encryptfonAdecryption circuit 
(14). 

10. A data security system according to Claim 5. 
wherein said second CPU and third CPU are pro- 
vided by a angle CPU in a time sharing manner. 



(1) a server machine (1) comprising: 

so 

(a) a first CPU (4): and 

(b) a first memory (5); 



(2) a dient machine (2) comprising: 

65 

(a) a second CPU (8); 

(b) a second memory (9); 

(c) a third CPU (6); and 

(d) a third memory (7); 
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SECURITY MODULE 35 SECURITY MODULE 34 
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Fig.2 



START 



S1 



CLIENT MACHINE 2 CALLS SERVER 
MACHINE 1 VIA CHANNEL 3 TO ESTABLISH 

- NEW SESSION. 



S2 



SEND SPECIFIC PROGRAM FROM 
MEMORY 5 TO MEMORY 7. 



S3 



THE PROGRAM RESIDING IN MEMORY 7 IS 
EXECUTED USING CPU 6, BUT UNDER 
CONTROL OF AND INTERACTION WITH 
THE PROGRAM EXECUTED BY CPU 4. 



S4 



CPUS 4 AND 6 WORK TOGETHER TO 
EXECUTE SERVER PROGRAM STORED IN 
MEMORIES 5 AND 7. COMMUNICATION 
BETWEEN CPUS 6 AND 8 ENABLES 
COMMUNICATION BETWEEN 
DEVICES 1 AND 2. 
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Fig. 4 



S9 



S10 



START 



S5 PROCESS 32 IS PROJECTED FROM 

MACHINE 1 TO MACHINE 2. 



PROCESS 33 INFORMS PROCESS 32 
« R OF MACHINE 2 ID ENCRYPTED USING 
00 MACHINE IS PUBLIC ASSYMETRIC 

ENCRYPTION KEY. 



PROCESS 32 SENDS ID TO 
e 7 PROCESS 31 WHICH DECRYPTS 
°' THE ID USING MACHINE IS PRIVATE 
ASSYMETRIC DECRYPTION KEY. 



PROCESS 31 SENDS A SECURE 
COMMUNICATION SYMMETRIC KEY FOR 
THIS SESSION TO PROCESS 32 
S8 ENCRYPTED USING THE PUBLIC 
REGISTERED ASSYMETRIC KEY OF 
MACHINE 2 OBTAINED BY LOOK UP 
OF MACHINE 2'S ID. 



PROCESS 32 PASSES ENCRYPTED 
KEY TO PROCESS 33 FOR DECRYPTION 
USING THE PRIVATE ASSYMETRIC 
KEY HELD BY MACHINE 2. 



PROCESS 33 RETURNS THE 
DECRYPTED 
SYMMETRIC KEY FOR THIS SESSION 
FOR PROCESS 32 TO USE AS 
REQUIRED FOR ENSUING 
COMMUNICATIONS. 



9 



EP 0 794 639 A2 



Fig. 5 
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Fig.7 PRIOR ART 
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